IN THE CLAIMS; 



1 . A method for communicating securely over an insecure communication channel 
between a pair of correspondents who perform shared key cryptographic operations by 
implementing respective ones of a pair of complimentary mathematical operations 
utilizing a shared key, said method comprising the steps of: 

assembling a data string including information to be transferred from a sending 
correspondent to a receiving correspondent; 

performing a complimentary mathematical operation using points on an elliptic 
curve defined over a finite field and represented in projective coordinates, and wherein 
the addition of points on the elliptic curve is defined in projective coordinates; and 

forwarding the defined group of points over a communication channel to the 
receiving correspondent and performing the other of the corresponding mathematical 
cryptographic operations to decrypt the data. 

2. A method of encrypting and decrypting a message bit string in an information 
processing system in accordance with claim 1 where the elliptic curve points in projective 
coordinates are represented using three coordinates, (X,Y,Z), wherein X, Y and Z are 
elements of F(p) represented in N-bit strings, and which includes a step where extra 
message bits are embedded in the Z coordinate in addition to the message data bits that 
are embedded in the X coordinate, 

3. A method of encrypting and decrypting a message bit string in an information 
processing system in accordance with claim 2 comprising the steps of: 

embedding a message bit string into the X and Z coordinates of an elliptic curve 
point which is designated as the message point, (XmYmZm); 

providing a shared key k and a base point (XbYbZb) and computing the scalar 
multiplication (XbkYbkZbk) = k (XbYbZb); 

computing a cipher point (XcYcZc) using (XcYcZc) = (X„,YmZm) + k(XbYbZb); 

sending appropriate bits of the X-coordinate, Xc and the Z-coordinate Zc of the 
cipher point (XcYcZc) to a receiving party; 
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using the shared key k and the base point (XbYbZb) computing the scalar 
multipUcation (XbkYbkZbk) = k (XbYbZb); 

computing the message point (XmY^Zm) using (XmYmZm) = (XcYcZc) + (-k 
(XbYbZb)); 

recovering the message bit string from Xm and Z^. 

4 A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 3 in which the message bit string is divided into 
strings of length of M-bit where (2N-L) > M > (N-L). 

5 A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 4 in which a M-bit message string is further divided 
into two strings mim2, where the length of string mi must be no more than (N-L) bits, 
while the length of string mz must be no more than (N-1) bits. 



6. A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 5 which includes the steps of: 

assigning the value of the bit string of m2 to Zm using the following procedure: 

i. assign the value of the bit string m2 to Rm, 

ii. using Legendre test to determine if Rm has a square root, 

iii. if Rm has a square root set Z^ = Rm otherwise set Zm = gRm 
where g is any non-quadratic value in the underlying finite 
filed, 

and compute a Z^m and bZ^m 

assign the value of the bit string of mi to Xm 

compute T = X'm + (aZ'm) Xm + (bZ'm); 

using Legendre test to see if T has a square root; 

if T has a square root assign one of the roots to Y, if not continue incrementing 
Xm and repeating the computation of T until T has a square root. 
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7. A method for transferring data over a communication channel according to claim 
6 in which a second projective coordinate is used by the sending correspondent and to the 
receiving correspondent to eliminate the inversion or division during each addition and 
doubling operation of the scalar multiplication. 

8. An encryption and decryption system in accordance with claim 7 and which is 
implemented either as a pure hardware unit, or as a program stored on a computer 
readable storage device and executed on a digital computer, or a combination of both. 

9. A method for transferring data over a communication channel between a pair of 
correspondents who perform public key cryptographic operations by implementing 
respective ones of a pair of complimentary mathematical operations utiHzing a public key 
and a private key of one of the correspondents, said method comprising the steps of: 

assembling a data string including information to be transferred from a sending 
correspondent to a receiving correspondent; 

performing a complimentary mathematical operation using a group of points on 
an elliptic curve defined over a finite field and represented in projective coordinates, and 
wherein the group of points on the elliptic curve are defined over addition in projective 
coordinates; and 

forwarding the defined group of points over a communication channel to the 
receiving correspondent and performing the other of the corresponding mathematical 
operations of the public key and the private key cryptographic operation to decrypt the 
data. 

10. A method of encrypting and decrypting a message bit string in an information 
processing system in accordance with claim 9 where the elliptic curve points in projective 
coordinates are represented using three coordinates, (X,Y,Z), wherein X, Y and Z are 
elements of F(p) represented in N-bit strings, and which includes a step of embedding 
extra message bits in the Z coordinate in addition to the message data bits that are 
embedded in the X coordinate. 
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11. A method of encrypting and decrypting a message bit string in an information 
processing system in accordance with claim 10 comprising the steps of: 

embedding a message bit string into the X and Z coordinates of an elliptic curve 
point which is designated as the message point, (XmYmZm) by the sending correspondent; 

using the private key of the sending correspondent, kspr, and the pubUc key of the 
receiving correspondent, kRPr(XbYbZb), to compute the scalar muUiplication (XbkYbkZbk) 
= ksPr(kRPr(XbYbZb)); 

computing a cipher point (XcYcZc) using (XcYcZc) = (X^YmZm) + (XbkYbkZbk); 

sending appropriate bits of the X-coordinate, Xc and the Z-coordinate Zc of the 
cipher point (XcYcZc) to the receiving correspondent; 

using the private key of the receiving correspondent, kapr, and the public key of 
the sending correspondent, ksPr(XbYbZb), to compute the scalar multipUcation 
(XbkYbkZbk) = kRPr (ksPr (XbYbZb)); 

computing the message point (XmYn,Zn,) using (XmYnZm) = (XcYcZc) - 
(XbkYbkZbk); 

recovering the message bit string from Xm and Zm. 

12 A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 1 1 in which the message bit string is divided into 
strings of length of M-bit where (2N-L) > M > (N-L). 

1 3 A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 12 in which a M-bit message string is further 
divided into two strings mim2, where the length of string mi must be no more than (N-L) 
bits, while the length of string m2 must be no more than (N-1) bits. 

14. A method for encrypting and decrypting a message bit string in an information 
processing system according to claim 13 which includes the steps of: 

assigning the value of the bit string of m2 to Z^ using the following procedure: 

iv. assign the value of the bit string m2 to Rm, 

V. using Legendre test to determine if Rm has a square root, 
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vi. if Rm has a square root set Zm = Rm otherwise set Zm = gRm 
where g is any non-quadratic value in the underlying finite 
filed, 

and compute a Z^m and bZ^m 

assign the value of the bit string of mi to Xm 

compute T = X^n, + (aZ^n,) Xn, + (bZ^m); 

using Legendre test to see if T has a square root; 

if T has a square root assign one of the roots to Y, if not continue incrementing 
Xm and repeating the computation of T until T has a square root. 

15. A method for transferring data over a communication channel according to claim 
14 in which a second projective coordinate is used by the sending correspondent and to 
the receiving correspondent to eliminate the inversion or division during each addition 
and doubling operation of the scalar muhiplication. 

16. An encryption and decryption system in accordance with claim 15 and which is 
implemented as a pure hardware unit, or as a program stored on a computer readable 
storage device and executed on a digital computer. 

17. In a method for communicating securely over an insecure communication channel 
using elliptic cxu-ve cryptography, the improvement comprising applying projective 
coordinates in two stages and wherein a projective coordinate in a first of said two stages 
is used to embed extra message data bits in the Z-coordinate and wherein a projection 
coordinate in a second of said two stages is used to remove a division operation at each 
iteration and for randomizing the computation in order to provide a counter measure 
against differential power analysis. 

18. A method of digital signatures generation and verification using points on an 
elliptic curve defined over a finite field and represented in projective coordinates, and 
wherein the addition of points on the elliptic curve is defined in projective coordinates. 
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19. A method of digital signature generation and verification in accordance with 
claim 18 which involves mathematical operations that includes steps of elliptic curve 
scalar multiplication(s) using point additions defined in projective coordinates. 

20. A method of digital signature generation and verification in accordance with 
claim 19 where both the X and Z coordinate of the computed elliptic curve point(s) are 
used in the signature generation and verification steps. 

21 . A method of digital signature generation and verification in accordance with 
claim 20 in which a second projective coordinate is used by the signing correspondent 
and to the verifying correspondent to eliminate the inversion or division during each 
addition and doubling operation of the corresponding scalar multipUcation, and for 
randomizing the computation in order to provide a counter measure against differential 
power analysis. 

22. A digital signature generation and verification system in accordance with claim 
21 and which is implemented either as a pure hardware unit, or as a program stored on a 
computer readable storage device and executed on a digital computer, or a combination 
of both. 
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